Crypto
💥Kelp DAO $293M Hack Triggers $20B DeFi TVL Wipeout
The Rundown: A single-validator bridge exploit on Kelp DAO on April 18 drained $293M, caused ~$20B in DeFi TVL losses, and prompted major institutions to issue warnings about open DeFi's incompatibility with traditional risk frameworks.
The details:
- ●The Kelp DAO exploit leveraged a single-validator bridge and the absence of collateral concentration limits — JPMorgan and Jefferies warned institutions against open DeFi integration following the incident
- ●The DeFi United recovery fund has raised 73,700 ETH of the 163,200 ETH hole, with a TokenLogic proposal to contribute 25,000 ETH from Aave's treasury still pending
- ●Mizuho, Nomura, and JSCC launched a JGB tokenization proof-of-concept on Canton Network for 24/7 real-time collateral management, with WalletConnect integrating Canton to reach 55.5M users
- ●DoorDash went live on Tempo for stablecoin-powered payouts across 40+ countries, processing $10B+ annualized volume with sub-second finality
Why it matters: This hack is a stress test DeFi failed publicly. The $293M loss is manageable; the $20B TVL exodus is not. Institutions that were cautiously warming to DeFi now have a fresh data point confirming their risk teams' objections. The counternarrative — permissioned networks like Canton gaining major Japanese bank backing and DoorDash moving stablecoin payouts into production — suggests the real institutional on-ramp to crypto infrastructure will be through controlled, compliant rails, not open DeFi protocols. Founders building in the space should study the operational controls gap being highlighted: multi-verifier requirements, published incident-response playbooks, and pre-funded loss-absorption mechanisms are now table stakes for institutional credibility.
📰 Source: Converge by The Defiant, The Defiant